8190917: SSL session resumption broken for protocols other than TLSv1.2
Jaikiran Pai
jai.forums2013 at gmail.com
Thu Nov 9 12:56:08 UTC 2017
Thank you Sean and David. I'll checkout this correct jdk project locally
and open a new discussion in the security-dev mailing list.
-Jaikiran
On 09/11/17 6:16 PM, Seán Coffey wrote:
> Hi Jaikiran,
>
> Thanks for stepping up to offer a patch for this issue.
> security-dev at openjdk.java.net is the mailing list where you'll need to
> have the code review performed. Also, once you sign the OCA, you'll
> need to contribute the patch to the new JDK Project[1] via its new
> repo : http://hg.openjdk.java.net/jdk/jdk
>
> regards,
> Sean.
>
> [1] http://openjdk.java.net/projects/jdk/
>
> On 09/11/2017 12:41, David Holmes wrote:
>> Hi Jaikiran,
>>
>> JDK 9 has shipped so this mailing list is pretty quiet now. A bug fix
>> needs to go into the main JDK project, and from there it can be
>> backported to update releases if appropriate. In this case it looks
>> like this would be something to take to the net-dev at openjdk.java.net
>> mailing list.
>>
>> Cheers,
>> David
>>
>> On 9/11/2017 10:35 PM, Jaikiran Pai wrote:
>>> I would like to contribute a patch, containing a potential fix and a
>>> test case, to the issue reported at
>>> https://bugs.openjdk.java.net/browse/JDK-8190917. This is going to
>>> be my first contribution to OpenJDK, so I would need some
>>> guidance/help in having this reviewed/merged, please.
>>>
>>> To give a quick overview of this specific bug - the issue relates to
>>> SSL session resumption which is no longer functional in Java 9 for
>>> SSL protocols other than TLSv1.2. The JIRA itself has more extensive
>>> details and a test case which reproduces the issue.
>>>
>>> So far, I have followed various documentation to setup and build
>>> OpenJDK jdk9 locally. I use a Mac and at this point, I have
>>> completed the following set of basic tasks:
>>>
>>> - Checked out the mercurial repo (the complete forest) for jdk9
>>> (hg tclone http://hg.openjdk.java.net/jdk9/jdk9)
>>> - Built the JDK locally, following the instructions under
>>> common/doc/building.md
>>> - Run some of the basic tests successfully
>>>
>>> I have a potential fix ready and am in the process of writing a
>>> jtreg test for this change. I am going to sign and submit the Oracle
>>> Contributor Agreement this week soon (I believe that's needed right?).
>>>
>>> Before sending out the patch for review, I would like to understand
>>> if there's anything else that I need to do before that. One thing
>>> that I read in the contribution page[1] is that "Your patch must be
>>> built and tested on all relevant platforms before submission". For
>>> me, the only platform that I have access to is going to be my local
>>> Mac OS. When I submit the patch, am I expected to test the changes
>>> on other *nix and Windows OS too?
>>>
>>> If there's anything else that I left out, please feel free to let me
>>> know or point me to the doc.
>>>
>>> [1] http://openjdk.java.net/contribute/
>>>
>>> P.S: I hope this is the right mailing list. I read the "how to
>>> contribute" page and then guessed this is the correct mailing list,
>>> but I'm not sure since I don't see any similar contributions
>>> requests in the archive of this mailing list, this past year.
>>>
>>> -Jaikiran
>>>
>>>
>
More information about the jdk9-dev
mailing list